Hacker Newsnew | comments | show | ask | jobs | submit login

It's called "OpenInstall", see openinstall.com - after looking up the domain owner, old owners, servers and registration of the company as well as multiple addresses, I found it is the same company responsible for this: https://plus.google.com/109412257237874861202/posts/FXL1y8qG...

"Viveli" or "GameTheory" are the company names, see comments on Cutts page. According to the posting, they even lost ties to their former toolbar partners Zugo.com because Bing.com shut them down for forced installs (like on Bright.com or on CNET).

http://www.openinstall.com/aboutus.html - seems like most of them are former founders of "FreeCause", a toolbar company that hides installs under the false impression of charitable donations.

The person behind it is Eduardo Vivas, who just opened up his new startup Bright.com, which is Co-Reg scam, if you look at the getsatisfaction.com support requests this becomes very clear. Sign up people, send them to education affiliate offers, cold call them from a call-center and have them download a toolbar to get access to job postings.

Scam.




I can see in the plus article that you usually do pretty thorough research, but this time you're wrong. OpenInstall didn't do the CNET deal. Try checking out installcore.com

-----


I have the openinstall toolbar path install wizard, linked to a bunch of silent installers and originally found on download.com and a couple other smaller "game" sites, in our malware database. The database is collected by a robot that scans the net for such "non typical" installers. Maybe CBS changed it or was just trying them out. Either way, they are scammers.

Public entries are available:

http://www.microsoft.com/security/portal/Threat/Encyclopedia...

http://www.malware.com.br/cgi/search.pl?id=QWR3YXJlOldpbjMyL...

http://amada.abuse.ch/?search=cdn.openinstall.com.s3.amazona...

Concerning are the MC alerts:

http://www.malware-control.com/statics-pages/66beb6cff7a046d...

http://www.malware-control.com/statics-pages/8509e4805e78b0b...

http://www.malware-control.com/statics-pages/89267efa2271745...

The external reference links to avast, bitdefender, etc. are all broken and "OpenInstall" can't be found in their databases. I assume openinstall payed them off to remove the entries.

-----




Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact

Search: